Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 272
  • Last Modified:

Need to access VPN network as well as local network

Hello,
we have 2 networks in my organisation, one is a untunnelled VPN network which we connect thru CISCO  VPN client. we access some software thru that  and at the same time try to access some file servers in the local network or other shares in any computers in the domain.
Both networks are of different subnet  how can we access both network resources at the same time ?
0
joseph301074
Asked:
joseph301074
2 Solutions
 
Istvan KalmarHead of IT Security Division Commented:
yes it is possibe. you need to add spolit tunnel ACL for booth subnets...
0
 
Pete LongTechnical ConsultantCommented:
Im unfamiliar with the spolit tunnel - I think my learned colleague means split tunnel :) http://www.petenetlive.com/KB/Article/0000066.htm

0
 
_valkyrie_Commented:
This is how we do it with a Cisco ISR:


crypto isakmp client configuration group Employees
 key <somepassword>
 dns <ip of your dns server at location with cisco router>
 domain <your domain at location with cisco router>
 pool rap-1
 acl ra-split-acl
 split-dns <your domain at location with cisco router>

crypto dynamic-map dm-corporate-mesh-vpn 1
 set transform-set esp-aes-sha 
 reverse-route
 qos pre-classify

crypto map cm-corporate-mesh-vpn client authentication list authen-cm-corporate-mesh-vpn
crypto map cm-corporate-mesh-vpn isakmp authorization list author-cm-corporate-mesh-vpn
crypto map cm-corporate-mesh-vpn client configuration address respond
crypto map cm-corporate-mesh-vpn 65535 ipsec-isakmp dynamic dm-corporate-mesh-vpn

ip local pool rap-1 192.168.250.1 192.168.250.254

ip access-list extended ra-split-acl
 permit ip <address info for location with cisco router> 0.0.0.255 any

Open in new window

0
 
QlemoC++ DeveloperCommented:
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
0

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now